# MesoClaw Architecture
## Table of Contents
- [System Architecture](#system-architecture)
- [Data Flow](#data-flow)
- [Crate Dependency Graph](#crate-dependency-graph)
- [Project Structure](#project-structure)
- [Default Paths by OS](#default-paths-by-os)
- [Feature Flag Composition](#feature-flag-composition)
- [Trait-Driven Architecture](#trait-driven-architecture)
- [Credential System](#credential-system)
- [Provider Registry](#provider-registry)
- [Messaging Channels System](#messaging-channels-system)
- [Identity / Soul System](#identity--soul-system)
- [Skills System](#skills-system)
- [User Profile + Progressive Learning](#user-profile--progressive-learning)
- [Gateway Routes](#gateway-routes)
- [Desktop App Architecture](#desktop-app-architecture)
- [Context-Aware Agent System](#context-aware-agent-system)
- [Self-Evolving Framework](#self-evolving-framework)
- [Scheduler Notification Flow](#scheduler-notification-flow-stage-861)
- [Channel Router Pipeline](#channel-router-pipeline-stage-87)
- [Channel Lifecycle Hooks](#channel-lifecycle-hooks-stage-88)
- [Test Debt and Hardening](#test-debt--hardening-stage-89)
- [Agent Action Tools](#agent-action-tools-phase-810)
- [Autonomous Reasoning Engine](#autonomous-reasoning-engine-phase-811)
- [Semantic Memory and Embeddings](#semantic-memory-and-embeddings-phase-811)
- [Phase 18 Hardening](#phase-18-hardening)
- [Plugin Architecture](#plugin-architecture-phase-9)
- [Context-Driven Auto-Discovery](#context-driven-auto-discovery)
- [AgentSelfTool](#agentselftool)
- [OpenAPI Documentation](#openapi-documentation)
- [Onboarding Flow](#onboarding-flow)
- [Tool Permission System](#tool-permission-system-phase-19)
- [Model Capability Validation](#model-capability-validation)
- [Concurrency Rules](#concurrency-rules)
- [Lessons Learned from v1](#lessons-learned-from-v1)
---
## System Architecture
```mermaid
graph TD
subgraph Clients["Clients"]
Desktop[Desktop] & Mobile["Mobile
#40;future#41;"] & CLI[CLI] & TUI["TUI
#40;future#41;"] & Daemon[Daemon]
Web["Frontend
Svelte 5"]
end
subgraph Core["mesoclaw-core"]
BootEntry["boot.rs
init_services"]
subgraph App["Application Layer"]
Gateway["Gateway
axum :18981"]
AI["AI Engine
rig-core"]
Context["Context Engine
3-tier injection"]
DB["Database
rusqlite + sqlite-vec"]
end
subgraph Domain["Domain Layer"]
Identity["Identity
SoulLoader"]
Skills["Skills
SkillRegistry"]
UserL["User Profile
UserLearner"]
Channels["Channels"]
end
subgraph Support["Support Layer"]
Tools["Agent Tools"]
Security["Security"]
Creds2["Credentials"]
Config["Config"]
EventBus["EventBus"]
end
end
Desktop -->|embedded gateway| Gateway
Mobile & CLI & TUI & Daemon --> Gateway
Web -->|HTTP/WS| Gateway
BootEntry --> Gateway & DB & EventBus
Gateway --> AI & DB & Context
Gateway --> Identity & Skills & UserL & Channels
AI --> Tools & Security & DB
AI --> Identity & Skills
Context --> DB & Identity & UserL & Skills
style Clients fill:#2196F3,color:#fff
style App fill:#4CAF50,color:#fff
style Domain fill:#FF9800,color:#fff
style Support fill:#9E9E9E,color:#fff
```
## Data Flow
```mermaid
graph TB
subgraph Clients
D[Desktop] & M[Mobile] & C[CLI] & T[TUI] & F[Frontend]
end
subgraph GW["Gateway :18981"]
REST["REST
75 base + 17 feature-gated"]
WS["WebSocket
/ws/chat"]
end
subgraph Backend
AIL[AI Layer] & DBL[Database]
IDL[Identity] & SKL[Skills] & USL[User]
end
D & M & C & T -->|HTTP| REST
F -->|HTTP/WS| WS
REST & WS --> AIL
REST --> DBL & IDL & SKL & USL
AIL --> DBL & IDL & SKL
style Clients fill:#2196F3,color:#fff
style GW fill:#4CAF50,color:#fff
style Backend fill:#FF9800,color:#fff
```
## Crate Dependency Graph
```mermaid
graph TD
desktop[mesoclaw-desktop] --> core[mesoclaw-core]
desktop --> tauri["tauri 2.10
#40;app framework#41;"]
desktop --> winstate["tauri-plugin-window-state
#40;persist size/position#41;"]
desktop --> singleinst["tauri-plugin-single-instance
#40;enforce one instance#41;"]
desktop --> opnr["tauri-plugin-opener
#40;open data dir#41;"]
desktop -.-> devtools["tauri-plugin-devtools
#40;feature-gated#41;"]
mobile["mesoclaw-mobile
#40;future#41;"] -.-> core
cli[mesoclaw-cli]
tui["mesoclaw-tui
#40;future#41;"] -.-> core
daemon[mesoclaw-daemon] --> core
core --> axum["axum
#40;gateway#41;"]
core --> rusqlite["rusqlite
#40;database#41;"]
core --> rigcore["rig-core
#40;AI#41;"]
core --> tokio["tokio
#40;async runtime#41;"]
core --> keyring["keyring
#40;credentials#41;"]
core --> sysinfo["sysinfo
#40;system info + processes#41;"]
core --> ignore["ignore
#40;file search#41;"]
core --> diffy["diffy
#40;patch/diff#41;"]
core --> lru["lru
#40;embedding cache#41;"]
core --> sqlitevec["sqlite-vec
#40;vector search#41;"]
core --> serdeyaml["serde_yaml
#40;YAML frontmatter#41;"]
core --> dashmap["dashmap
#40;concurrent registries#41;"]
core --> websearch["websearch
#40;web search providers#41;"]
core -.-> teloxide["teloxide
#40;Telegram, feature-gated#41;"]
core -.-> serenity["serenity
#40;Discord, feature-gated#41;"]
cli --> reqwest["reqwest
#40;HTTP client#41;"]
cli --> tungstenite["tokio-tungstenite
#40;WS client#41;"]
cli --> clap["clap
#40;arg parsing#41;"]
```
## Project Structure
```
mesoclaw/
├── Cargo.toml # Workspace root (5 members)
├── CLAUDE.md # AI assistant instructions
├── README.md # Project documentation
├── scripts/
│ └── build.sh # Cross-platform build script
├── docs/
│ ├── architecture.md # This file
│ ├── phases.md # Implementation phases
│ └── processes.md # Process flow diagrams
├── plans/
│ ├── phase1_core_foundation.md # Detailed implementation plan
│ └── migration_plan.md # v1 → v2 migration strategy
├── tests/
│ ├── phase1_core_foundation.md # Test plan + results
│ ├── phase2_ai_integration.md # (planned)
│ └── ...
├── crates/
│ ├── mesoclaw-core/ # Shared library (NO Tauri dependency)
│ │ ├── src/
│ │ │ ├── lib.rs # Module exports + Result alias
│ │ │ ├── error.rs # MesoError enum (30 variants, thiserror)
│ │ │ ├── boot.rs # init_services() -> Services -> AppState, single boot entry point
│ │ │ ├── config/ # TOML config (schema + load/save + OS paths)
│ │ │ ├── db/ # rusqlite pool + WAL + migrations + spawn_blocking
│ │ │ ├── event_bus/ # EventBus trait + TokioBroadcastBus (12 events)
│ │ │ ├── memory/ # Memory trait + SqliteMemoryStore (FTS5 + vectors) + InMemoryStore
│ │ │ ├── credential/ # CredentialStore trait + KeyringStore + InMemoryCredentialStore
│ │ │ ├── security/ # SecurityPolicy + AutonomyLevel + rate limiter + audit log
│ │ │ ├── tools/ # Tool trait + ToolRegistry (DashMap) + 16 tools (14 base + 2 feature-gated)
│ │ │ ├── ai/ # AI agent (rig-core), providers, session manager, tool adapter, context engine
│ │ │ ├── gateway/ # axum HTTP+WS gateway (75 base + 17 feature-gated routes, auth middleware, error mapping, MESO_VALIDATION)
│ │ │ ├── identity/ # SoulLoader + PromptComposer + defaults (SOUL/IDENTITY/USER.md)
│ │ │ ├── skills/ # SkillRegistry + bundled/user skills (markdown + YAML frontmatter)
│ │ │ ├── user/ # UserLearner + SQLite observations + privacy controls
│ │ │ ├── channels/ # Channel traits + registry + 3 adapters (Telegram/Slack/Discord, feature-gated)
│ │ │ │ ├── mod.rs # Module exports with feature gates
│ │ │ │ ├── traits.rs # Channel, ChannelLifecycle, ChannelSender traits
│ │ │ │ ├── message.rs # ChannelMessage with builder pattern
│ │ │ │ ├── registry.rs # ChannelRegistry (DashMap-backed)
│ │ │ │ ├── protocol.rs # ConnectorFrame wire protocol
│ │ │ │ ├── telegram/ # TelegramChannel + config + formatting
│ │ │ │ ├── slack/ # SlackChannel + API helpers + formatting
│ │ │ │ └── discord/ # DiscordChannel + config
│ │ │ └── scheduler/ # Cron + scheduled tasks, feature-gated (Phase 8)
│ │ └── tests/ # Integration tests
│ ├── mesoclaw-desktop/ # Tauri 2.10 shell (desktop)
│ │ ├── Cargo.toml # tauri 2.10, 4 plugins, devtools feature
│ │ ├── build.rs # tauri_build::build()
│ │ ├── tauri.conf.json # 1280x720, CSP, com.sprklai.mesoclaw
│ │ ├── capabilities/default.json
│ │ ├── icons/ # 7 icon files
│ │ └── src/
│ │ ├── main.rs # Entry + Linux WebKit DMA-BUF fix
│ │ ├── lib.rs # Builder: plugins, tray, IPC, close-to-tray
│ │ ├── commands.rs # 4 IPC + boot_gateway() + 7 tests
│ │ └── tray.rs # Show/Hide/Quit menu + 1 test
│ ├── mesoclaw-mobile/ # Tauri 2 shell (iOS + Android) (future release)
│ ├── mesoclaw-cli/ # clap CLI
│ ├── mesoclaw-tui/ # ratatui TUI (future release)
│ └── mesoclaw-daemon/ # Headless daemon (full gateway server)
└── web/ # Svelte 5 frontend (SPA)
├── src/
│ ├── app.css # Tailwind v4 + shadcn theme tokens
│ ├── app.html # SPA shell
│ ├── lib/
│ │ ├── api/ # HTTP client + WebSocket manager
│ │ ├── tauri.ts # isTauri detection + 4 invoke wrappers
│ │ ├── components/
│ │ │ ├── ai-elements/ # svelte-ai-elements (9 component sets)
│ │ │ ├── ui/ # shadcn-svelte primitives (14 component sets)
│ │ │ ├── AuthGate.svelte
│ │ │ ├── ChatView.svelte
│ │ │ ├── Markdown.svelte
│ │ │ ├── SessionList.svelte
│ │ │ └── ThemeToggle.svelte
│ │ ├── stores/ # 7 Svelte 5 rune stores ($state, includes channels)
│ │ ├── paraglide/ # i18n (paraglide-js, EN only, 24 keys)
│ │ └── utils.ts # shadcn utility helpers
│ └── routes/ # 9 SPA routes
│ ├── +page.svelte # Home
│ ├── chat/+page.svelte # New chat
│ ├── chat/[id]/+page.svelte # Existing session
│ ├── memory/+page.svelte # Memory browser
│ ├── schedule/+page.svelte # Placeholder (Phase 8)
│ ├── settings/+page.svelte # General settings
│ ├── settings/providers/ # Provider config
│ ├── settings/channels/ # Channel credential + connection management
│ └── settings/persona/ # Identity + skills editor
├── package.json
└── vitest.config.ts # 26 unit tests (vitest)
```
## Default Paths by OS
Resolved via `directories::ProjectDirs::from("com", "sprklai", "mesoclaw")`.
Source: `crates/mesoclaw-core/src/config/mod.rs`
| OS | Config Path | Data Dir / DB Path |
|---|---|---|
| **Linux** | `~/.config/mesoclaw/config.toml` | `~/.local/share/mesoclaw/mesoclaw.db` |
| **macOS** | `~/Library/Application Support/com.sprklai.mesoclaw/config.toml` | `~/Library/Application Support/com.sprklai.mesoclaw/mesoclaw.db` |
| **Windows** | `%APPDATA%\sprklai\mesoclaw\config\config.toml` | `%APPDATA%\sprklai\mesoclaw\data\mesoclaw.db` |
Override in `config.toml`:
```toml
data_dir = "/custom/data/path" # overrides default data directory
db_path = "/custom/path/mesoclaw.db" # overrides database file directly
```
## Feature Flag Composition
```mermaid
graph TD
Daemon[mesoclaw-daemon binary] --> Default[default - no flags]
Daemon --> Channels["--features channels"]
Daemon --> ChTG["--features channels-telegram"]
Daemon --> ChSL["--features channels-slack"]
Daemon --> ChDC["--features channels-discord"]
Daemon --> Scheduler["--features scheduler"]
Daemon --> Dashboard["--features web-dashboard"]
Default --> CoreGW["mesoclaw-core
#40;gateway + ai + keyring#41;"]
CoreGW --> Axum[axum + tower-http]
Channels --> CoreCH[mesoclaw-core/channels]
ChTG --> CoreCH
ChTG --> Teloxide[teloxide]
ChSL --> CoreCH
ChDC --> CoreCH
ChDC --> Serenity[serenity]
Scheduler --> CoreSC[mesoclaw-core/scheduler]
Dashboard --> CoreWD[mesoclaw-core/web-dashboard]
CoreWD --> CoreGW
```
## Trait-Driven Architecture
All major subsystems are abstracted behind traits, allowing swappable implementations for testing, migration, and scaling.
```mermaid
graph TB
subgraph TraitAbstractions["Trait Abstractions - mesoclaw-core"]
Memory["dyn Memory
SQLite now
PostgreSQL + pgvector later"]
CredStore["dyn CredentialStore
Keyring now
Vault / cloud KMS later"]
Channel["dyn Channel
openclaw-channels"]
EvBus["dyn EventBus
tokio::broadcast now
NATS / Redis later"]
CompModel["Rig CompletionModel
built-in providers now
custom providers later"]
end
subgraph CurrentImpl["Current Implementations"]
SQLite["SqliteMemory"]
Keyring["KeyringStore"]
TGCh["TelegramChannel"]
SlackCh["SlackChannel"]
DiscordCh["DiscordChannel"]
TokioBus["TokioBroadcastBus"]
RigProviders["OpenAI / Anthropic / etc."]
end
subgraph FutureImpl["Future Implementations"]
PgVec["PostgreSQL + pgvector"]
Vault["HashiCorp Vault / KMS"]
NatsCh["NATS Channel"]
RedisBus["Redis EventBus"]
CustomProv["Custom LLM Provider"]
end
Memory --> SQLite
Memory -.-> PgVec
CredStore --> Keyring
CredStore -.-> Vault
Channel --> TGCh
Channel --> SlackCh
Channel --> DiscordCh
Channel -.-> NatsCh
EvBus --> TokioBus
EvBus -.-> RedisBus
CompModel --> RigProviders
CompModel -.-> CustomProv
style TraitAbstractions fill:#FF9800,color:#fff
style CurrentImpl fill:#4CAF50,color:#fff
style FutureImpl fill:#9E9E9E,color:#fff
```
All binary crates receive these traits via `AppState` (Clone + Arc\), never concrete types.
## Credential System
```mermaid
graph TB
subgraph CredModule["Credential Module"]
Mod["mod.rs
CredentialStore trait
get / set / delete / list"]
KR["keyring.rs
KeyringStore #40;production#41;
OS keychain integration"]
Mem["memory.rs
InMemoryStore #40;tests/CI#41;
DashMap-backed"]
end
subgraph BinaryAccess["Binary Access"]
Desktop["Desktop: direct keyring"]
CLI["CLI: direct keyring"]
TUI["TUI: via gateway HTTP"]
Daemon["Daemon: direct keyring"]
Mobile["Mobile: direct keyring"]
end
Mod --> KR
Mod --> Mem
Desktop --> KR
CLI --> KR
Daemon --> KR
Mobile --> KR
TUI -->|HTTP API| GW["Gateway"]
GW --> KR
style CredModule fill:#FF9800,color:#fff
style BinaryAccess fill:#2196F3,color:#fff
```
### Per-Binary Keyring Access
| Binary | Keyring Access | Notes |
|---|---|---|
| **Desktop** | Direct | Tauri 2 has full OS access |
| **Mobile** | Direct | Tauri 2 mobile has keychain access |
| **CLI** | Direct | Runs as user process |
| **TUI** | Via gateway | Connects to daemon over HTTP |
| **Daemon** | Direct | Headless, runs as service |
All credential values are wrapped with `zeroize` for secure memory cleanup.
## Provider Registry
The `ProviderRegistry` manages AI provider configurations (OpenAI, Anthropic, Gemini, OpenRouter, Vercel AI Gateway, Ollama, and custom providers). It is DB-backed with 6 built-in providers seeded on first boot.
```mermaid
graph TB
subgraph ProvReg["ProviderRegistry - DB-backed"]
Seed["Seed 6 built-in providers
on first boot"]
CRUD["CRUD operations
add, update, delete, list"]
Models["Model management
add/remove models per provider"]
Default["Default model
stored as _default_model row"]
Test["Connection testing
with latency measurement"]
end
subgraph BuiltInProv["Built-in Providers"]
OAI["OpenAI"] & ANT["Anthropic"] & GEM["Gemini"]
OR["OpenRouter"] & VAI["Vercel AI"] & OLL["Ollama"]
end
subgraph ProvStorage["Storage"]
DBP["ai_providers table"]
DBM["ai_models table"]
end
subgraph ProvConsumers["Consumers"]
Agent["MesoAgent
multi-provider dispatch"]
GW["Gateway
11 provider routes"]
Settings["Desktop Settings UI
provider cards + key management"]
end
Seed --> DBP
CRUD --> DBP
Models --> DBM
Default --> DBM
DBP --> Agent
DBM --> Agent
Test --> Agent
CRUD --> GW
Models --> GW
GW --> Settings
style ProvReg fill:#4CAF50,color:#fff
style BuiltInProv fill:#2196F3,color:#fff
style ProvStorage fill:#9E9E9E,color:#fff
style ProvConsumers fill:#FF9800,color:#fff
```
### Credential Key Naming Convention
| Scope | Pattern | Examples |
|---|---|---|
| AI Provider API Keys | `api_key:{provider_id}` | `api_key:openai`, `api_key:tavily`, `api_key:brave` |
| Channel Credentials | `channel:{channel_id}:{field}` | `channel:telegram:token`, `channel:slack:bot_token` |
## Messaging Channels System
The channels module provides trait-based messaging integration with external platforms. Each channel is feature-gated and managed through a concurrent `ChannelRegistry`.
```mermaid
graph TB
subgraph ChTraits["Channel Traits"]
ChTrait["Channel
id, name, platform"]
LC["ChannelLifecycle
connect, disconnect, health"]
CS["ChannelSender
send_text, send_reply"]
end
subgraph ChRegistry["Registry"]
CR["ChannelRegistry
DashMap-backed
register, get, list, health_check"]
end
subgraph ChImpl["Implementations - feature-gated"]
TG["TelegramChannel
channels-telegram
DmPolicy, MarkdownV2, BotCommand"]
SL["SlackChannel
channels-slack
DM detection, mrkdwn formatting"]
DC["DiscordChannel
channels-discord
guild/channel allowlists"]
end
subgraph WireProto["Wire Protocol"]
CF["ConnectorFrame
JSON wire protocol
for external connectors"]
HS["ConnectorHandshake
auth + capabilities"]
end
subgraph ChGateway["Gateway"]
Routes["6 feature-gated routes
+ 1 always-available test route"]
end
subgraph ChFrontend["Frontend"]
UI["Settings / Channels page
credential management
connection testing
latency display"]
end
ChTrait --> TG & SL & DC
LC --> TG & SL & DC
CS --> TG & SL & DC
TG & SL & DC --> CR
CR --> Routes
Routes --> UI
CF --> HS
style ChTraits fill:#FF9800,color:#fff
style ChRegistry fill:#4CAF50,color:#fff
style ChImpl fill:#2196F3,color:#fff
style WireProto fill:#9E9E9E,color:#fff
style ChGateway fill:#4CAF50,color:#fff
style ChFrontend fill:#2196F3,color:#fff
```
### Feature Flags
| Feature | Depends On | Adds |
|---|---|---|
| `channels` | (none) | Core channel traits + registry + gateway routes |
| `channels-telegram` | `channels` | TelegramChannel + teloxide dependency |
| `channels-slack` | `channels` | SlackChannel (uses existing reqwest/tungstenite) |
| `channels-discord` | `channels` | DiscordChannel + serenity dependency |
## Identity / Soul System
Identity defines the AI assistant's personality, tone, and behavior through 3 markdown files with YAML frontmatter. All prompt content comes from `.md` files — zero hardcoded prompt strings in Rust code.
```mermaid
graph TB
subgraph Files["Identity Files"]
SOUL["SOUL.md"] & IDENT["IDENTITY.md"] & USER["USER.md"]
end
subgraph SoulLoaderSG["SoulLoader"]
Loader["Load + parse
YAML frontmatter"]
Reload["POST /identity/reload"]
end
subgraph ComposerSG["PromptComposer"]
Compose["SOUL
IDENTITY meta
USER
Observations
Active skills
Config override"]
end
SOUL & IDENT & USER --> Loader
Reload --> Loader
Loader --> Compose
Compose --> Agent["Rig Agent"]
style Files fill:#2196F3,color:#fff
style SoulLoaderSG fill:#4CAF50,color:#fff
style ComposerSG fill:#FF9800,color:#fff
```
### Identity File Format (IDENTITY.md)
```markdown
---
name: MesoClaw
version: "2.0"
description: AI-powered assistant
---
# Identity details...
```
- **Storage**: `data_dir/identity/` (configurable via `identity_dir` in config.toml)
- **Bundled defaults**: embedded via `include_str!()` at compile time, written to disk on first run
- **Reload**: manual via `POST /identity/reload` endpoint (no `notify` dependency)
- **API**: `GET /identity`, `GET /identity/{name}`, `PUT /identity/{name}`, `POST /identity/reload`
## Skills System
Skills are instructional markdown documents loaded into the agent's context. They follow the Claude Code model — pure markdown with YAML frontmatter metadata, no parameter substitution.
```mermaid
graph TB
subgraph SkillSources["Skill Sources"]
BuiltIn["Bundled skills
include_str! at compile time
system-prompt, summarize"]
UserDir["User skills directory
data_dir/skills/*.md"]
end
subgraph SkillReg["SkillRegistry"]
Load["load_all#40;#41;
bundled first, then user"]
Parse["parse frontmatter
serde_yaml metadata"]
Store["RwLock HashMap
in-memory registry"]
end
BuiltIn --> Load
UserDir --> Load
Load --> Parse
Parse --> Store
Store --> Compose["PromptComposer
enabled skills → agent context"]
style SkillSources fill:#2196F3,color:#fff
style SkillReg fill:#4CAF50,color:#fff
```
### Skill File Format (Claude Code model)
```markdown
---
name: system-prompt
description: Generates effective system prompts for AI agents
category: meta
---
# System Prompt Generator
When creating system prompts, follow these principles:
...
```
- **No Tera/comrak**: Skills are pure markdown context documents, not parameterized templates
- **2 tiers**: Bundled (compile-time) + User (disk). User skills with same id override bundled.
- **API**: `GET /skills`, `GET /skills/{id}`, `POST /skills`, `PUT /skills/{id}`, `DELETE /skills/{id}`, `POST /skills/reload`
- **Bundled skills cannot be deleted** — only user skills support DELETE
## User Profile + Progressive Learning
MesoClaw learns user preferences over time via explicit observation API. Observations are stored in SQLite with category-based organization and confidence scoring.
```mermaid
graph TB
subgraph UserCtx["User Context"]
UserMd["USER.md
static user context template"]
end
subgraph UserLearnerSG["UserLearner - SQLite backed"]
Observe["observe#40;#41;
add/update observation"]
Query["get_observations#40;#41;
filter by category"]
Build["build_context#40;#41;
format for prompt"]
Prune["prune_expired#40;#41;
TTL-based cleanup"]
end
subgraph PrivacyCtrl["Privacy Controls"]
Toggle["learning_enabled = true/false"]
Denied["learning_denied_categories"]
MinConf["learning_min_confidence = 0.5"]
TTL["learning_observation_ttl_days = 365"]
Clear["DELETE /user/observations"]
end
UserMd --> Compose["PromptComposer"]
Build --> Compose
Compose --> Agent["Rig Agent context
personalized responses"]
Toggle --> Observe
Denied --> Observe
MinConf --> Build
TTL --> Prune
style UserCtx fill:#2196F3,color:#fff
style UserLearnerSG fill:#4CAF50,color:#fff
style PrivacyCtrl fill:#9E9E9E,color:#fff
```
- **USER.md**: static user context template (part of identity system)
- **UserLearner**: SQLite-backed observation store with CRUD operations
- **Observations**: stored in `user_observations` table with category, key, value, confidence, timestamps
- **Privacy**: learning toggled via config, denied categories block specific observation types, TTL auto-expires old observations
- **API**: `GET /user/observations`, `POST /user/observations`, `GET /user/observations/{key}`, `DELETE /user/observations/{key}`, `DELETE /user/observations`, `GET /user/profile`
## Context-Aware Agent System
The context engine provides 3-tier adaptive context injection that reduces token usage while keeping the agent contextually grounded.
```mermaid
graph TB
subgraph CtxEngine["Context Engine - ai/context.rs"]
Boot["BootContext
OS, arch, hostname, locale, region
computed once at startup"]
Dynamic["Dynamic Runtime
date, time, timezone, model, session
computed per-request"]
Summaries["Context Summaries
identity, user, capabilities, overall
cached in DB, hash-based invalidation"]
Compose["compose#40;level#41;
assembles preamble from tiers"]
end
subgraph CtxLevels["Context Levels"]
Full["Full
all tiers + summaries
new session or gap exceeded"]
Minimal["Minimal
one-liner: name + time + OS + model
continuing conversation"]
Summary["Summary
full + prior conversation summary
resumed session"]
end
subgraph FreqCtrl["Frequency Control"]
Gap["context_reinject_gap_minutes
default: 30"]
Count["context_reinject_message_count
default: 20"]
Toggle["context_injection_enabled
runtime toggle via PUT /config"]
end
Boot --> Compose
Dynamic --> Compose
Summaries --> Compose
Compose --> Full & Minimal & Summary
Gap --> Full
Count --> Full
Toggle --> Compose
style CtxEngine fill:#FF9800,color:#fff
style CtxLevels fill:#4CAF50,color:#fff
style FreqCtrl fill:#9E9E9E,color:#fff
```
### Context Level Determination
| Condition | Level | Content |
|---|---|---|
| New session (0 messages) | Full | Boot + runtime + identity + user + capabilities |
| Continuing (recent messages, within gap) | Minimal | One-liner: "MesoClaw — AI assistant \| date \| OS \| model" |
| Gap exceeded (> N minutes since last msg) | Full | Same as new session |
| Message count threshold exceeded | Full | Same as new session |
| Resumed session with prior messages | Summary | Full + prior conversation summary |
| Toggle disabled | Fallback | Config `agent_system_prompt` or default preamble |
### Prompt Strategy System
The prompt strategy system (Phase 8.13) replaces the dual-compose pipeline with a plugin-based architecture that reduces preamble tokens by ~65%:
```
PromptStrategyRegistry (implements PromptStrategy)
├── base: CompactStrategy or LegacyStrategy
│ └── Layers 0 + 1 + 3 (identity, runtime, overrides)
└── plugins: Vec>
├── MemoryPlugin (always)
├── UserObservationsPlugin (always)
├── SkillsPlugin (always)
├── LearnedRulesPlugin (if self_evolution)
├── ChannelContextPlugin (feature: channels)
└── SchedulerContextPlugin (feature: scheduler)
```
Handlers call `state.prompt_strategy.assemble(&AssemblyRequest)` -- a single entry point that:
1. Base strategy produces Layer 0 (identity), Layer 1 (runtime), Layer 3 (overrides)
2. Plugins contribute Layer 2 fragments with domain filtering and priority
3. Registry merges all fragments and applies token budget trimming
Config: `prompt_compact_identity` (default true) selects CompactStrategy vs LegacyStrategy. `prompt_max_preamble_tokens` (default 1500) controls the overflow budget.
### DB Schema (migration v5)
- `context_summaries` — cached AI-generated summaries with hash-based change detection
- `skill_proposals` — human-in-the-loop skill change approval workflow
- `sessions.summary` — conversation summary column for session resume
## Self-Evolving Framework
The agent can learn user preferences and propose skill changes, all subject to human approval.
```mermaid
graph TB
subgraph AgentTools["Agent Tools"]
Learn["LearnTool
silently record user observations
category + key + value + confidence"]
Propose["SkillProposalTool
propose create/update/delete skills
requires rationale"]
end
subgraph HITL["Human-in-the-Loop"]
Pending["Pending proposals
GET /skills/proposals"]
Approve["POST /skills/proposals/id/approve
executes the action"]
Reject["POST /skills/proposals/id/reject
marks as rejected"]
end
subgraph EvoStorage["Storage"]
Obs["user_observations table
category, key, value, confidence"]
Props["skill_proposals table
action, skill_name, content, rationale, status"]
end
subgraph Consolidation["Consolidation"]
Merge["Merge duplicate observations"]
Archive["Archive low-confidence old entries"]
Cap["Enforce max observation cap"]
end
Learn --> Obs
Propose --> Props
Props --> Pending
Pending --> Approve & Reject
Obs --> Merge & Archive & Cap
subgraph RuntimeToggles["Runtime Toggles"]
EvoToggle["self_evolution_enabled
gates LearnTool + SkillProposalTool"]
end
EvoToggle --> Learn & Propose
style AgentTools fill:#2196F3,color:#fff
style HITL fill:#4CAF50,color:#fff
style EvoStorage fill:#9E9E9E,color:#fff
style Consolidation fill:#FF9800,color:#fff
style RuntimeToggles fill:#9E9E9E,color:#fff
```
## Gateway Routes
All clients communicate via the HTTP+WebSocket gateway at `127.0.0.1:18981`. Routes are grouped by subsystem (79 base + 17 feature-gated = 96 total).
### Health (1 route, no auth)
| Method | Path | Description |
|---|---|---|
| GET | `/health` | Health check |
### Sessions & Chat (9 routes)
| Method | Path | Description |
|---|---|---|
| POST | `/sessions` | Create new chat session |
| GET | `/sessions` | List all sessions |
| GET | `/sessions/{id}` | Get session details |
| PUT | `/sessions/{id}` | Update session |
| DELETE | `/sessions/{id}` | Delete session |
| POST | `/sessions/{id}/generate-title` | Auto-generate session title via AI |
| GET | `/sessions/{id}/messages` | Get messages for a session |
| POST | `/sessions/{id}/messages` | Send message to session |
### Chat (1 route)
| Method | Path | Description |
|---|---|---|
| POST | `/chat` | Chat with AI agent |
### Memory (5 routes)
| Method | Path | Description |
|---|---|---|
| POST | `/memory` | Create memory entry |
| GET | `/memory` | Recall/search memories |
| GET | `/memory/{key}` | Get memory by key |
| PUT | `/memory/{key}` | Update memory by key |
| DELETE | `/memory/{key}` | Delete memory by key |
### Configuration (3 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/config` | Get current configuration (auth token redacted) |
| PUT | `/config` | Update configuration |
| GET | `/config/file` | Get raw config file content |
### Setup / Onboarding (1 route)
| Method | Path | Description |
|---|---|---|
| GET | `/setup/status` | Check if first-run setup is needed (missing location/timezone) |
### Credentials (5 routes)
| Method | Path | Description |
|---|---|---|
| POST | `/credentials` | Set a credential (key + value) |
| GET | `/credentials` | List all credential keys (values hidden) |
| DELETE | `/credentials/{key}` | Delete a credential |
| GET | `/credentials/{key}/value` | Get credential value (explicit retrieval) |
| GET | `/credentials/{key}/exists` | Check if credential exists |
### Providers & Models (12 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/providers` | List all providers |
| POST | `/providers` | Create user-defined provider |
| GET | `/providers/with-key-status` | List providers with API key status |
| GET | `/providers/default` | Get default model |
| PUT | `/providers/default` | Set default model |
| GET | `/providers/{id}` | Get provider details |
| PUT | `/providers/{id}` | Update provider |
| DELETE | `/providers/{id}` | Delete user-defined provider |
| POST | `/providers/{id}/test` | Test provider connection (with latency) |
| POST | `/providers/{id}/models` | Add model to provider |
| DELETE | `/providers/{id}/models/{model_id}` | Delete model from provider |
| GET | `/models` | List all available models across providers |
### Tools (2 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/tools` | List available tools |
| POST | `/tools/{name}/execute` | Execute a tool by name |
### Permissions (4 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/permissions` | List all known surfaces (desktop, cli, tui, telegram, slack, discord) |
| GET | `/permissions/{surface}` | List tool permissions for a surface |
| PUT | `/permissions/{surface}/{tool}` | Set a permission override for a tool on a surface |
| DELETE | `/permissions/{surface}/{tool}` | Remove an override (fall back to risk-level default) |
### System (1 route)
| Method | Path | Description |
|---|---|---|
| GET | `/system/info` | System information |
### WebSocket Channels (1 route)
| Path | Description |
|---|---|
| `/ws/chat` | Streaming chat responses |
### Identity (4 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/identity` | List all identity files |
| GET | `/identity/{name}` | Get identity file content |
| PUT | `/identity/{name}` | Update identity file content |
| POST | `/identity/reload` | Force reload all identity files |
### Skills (6 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/skills` | List all skills (optional `?category=` filter) |
| GET | `/skills/{id}` | Get full skill definition |
| POST | `/skills` | Create user skill |
| PUT | `/skills/{id}` | Update skill content |
| DELETE | `/skills/{id}` | Delete user skill (bundled cannot be deleted) |
| POST | `/skills/reload` | Force reload all skills |
### Skill Proposals (4 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/skills/proposals` | List pending skill proposals |
| POST | `/skills/proposals/{id}/approve` | Approve and execute a proposal |
| POST | `/skills/proposals/{id}/reject` | Reject a proposal |
| DELETE | `/skills/proposals/{id}` | Delete a proposal |
### User Profile + Learning (6 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/user/observations` | List observations (optional `?category=` filter) |
| POST | `/user/observations` | Add observation |
| GET | `/user/observations/{key}` | Get observation by key |
| DELETE | `/user/observations/{key}` | Delete observation by key |
| DELETE | `/user/observations` | Clear all observations |
| GET | `/user/profile` | Get computed user context string |
### Channels (10 routes, 9 feature-gated)
| Method | Path | Feature | Description |
|---|---|---|---|
| POST | `/channels/{name}/test` | always | Test channel credentials |
| GET | `/channels` | `channels` | List registered channels with status |
| GET | `/channels/{name}/status` | `channels` | Get channel status |
| POST | `/channels/{name}/send` | `channels` | Send message via channel |
| POST | `/channels/{name}/connect` | `channels` | Connect channel |
| POST | `/channels/{name}/disconnect` | `channels` | Disconnect channel |
| GET | `/channels/{name}/health` | `channels` | Health check |
| POST | `/channels/{name}/message` | `channels` | Webhook message endpoint |
| GET | `/channels/sessions` | `channels` | List channel sessions |
| GET | `/channels/sessions/{id}/messages` | `channels` | List channel session messages |
### Scheduler (6 routes, feature-gated)
| Method | Path | Description |
|---|---|---|
| POST | `/scheduler/jobs` | Create scheduled job |
| GET | `/scheduler/jobs` | List all jobs |
| DELETE | `/scheduler/jobs/{id}` | Delete job |
| PUT | `/scheduler/jobs/{id}/toggle` | Toggle job enabled/disabled |
| GET | `/scheduler/jobs/{id}/history` | Get job execution history |
| GET | `/scheduler/status` | Scheduler status |
### Embeddings (5 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/embeddings/status` | Current embedding provider and model info |
| POST | `/embeddings/test` | Test embedding generation |
| POST | `/embeddings/embed` | Embed arbitrary text |
| POST | `/embeddings/download` | Download local embedding model |
| POST | `/embeddings/reindex` | Re-embed all stored memories |
### Plugins (8 routes)
| Method | Path | Description |
|---|---|---|
| GET | `/plugins` | List all installed plugins |
| POST | `/plugins/install` | Install plugin from git URL or local path |
| DELETE | `/plugins/{name}` | Remove installed plugin |
| GET | `/plugins/{name}` | Get plugin info and manifest |
| PUT | `/plugins/{name}/toggle` | Enable or disable a plugin |
| POST | `/plugins/{name}/update` | Update plugin to latest version |
| GET | `/plugins/{name}/config` | Get plugin configuration |
| PUT | `/plugins/{name}/config` | Update plugin configuration |
### WebSocket Endpoints (2 routes)
| Path | Feature | Description |
|---|---|---|
| `/ws/chat` | always | Streaming chat responses |
| `/ws/notifications` | `scheduler` | Push scheduler notifications to clients |
### API Docs (2 routes, feature-gated)
| Method | Path | Feature | Description |
|---|---|---|---|
| GET | `/api-docs` | `api-docs` | Scalar interactive documentation UI |
| GET | `/api-docs/openapi.json` | `api-docs` | OpenAPI 3.1 JSON specification |
## Desktop App Architecture
The desktop app is a Tauri 2.10 shell wrapping the SvelteKit SPA frontend. It embeds the gateway server by default, so no separate daemon process is required.
### Tauri Plugins
| Plugin | Version | Purpose |
|---|---|---|
| tray-icon | built-in | System tray with Show/Hide/Quit menu |
| window-state | 2.4.1 | Persist window size, position, maximized state |
| single-instance | 2.4.0 | Enforce single running instance, focus existing |
| opener | 2.5.3 | Open data directory in OS file manager |
| devtools | 2.0.1 | WebView inspector (feature-gated, dev only) |
### IPC Commands
| Command | Description |
|---|---|
| `close_to_tray` | Hide window to system tray |
| `show_window` | Show and focus the main window |
| `get_app_version` | Return app version string |
| `open_data_dir` | Open MesoClaw data directory in OS file manager |
### Desktop Boot Flow
```mermaid
flowchart TD
Start([main.rs]) --> LinuxFix{"Linux?"}
LinuxFix -->|Yes| SetEnv["Set WEBKIT_DISABLE_DMABUF_RENDERER=1"]
LinuxFix -->|No| Builder
SetEnv --> Builder
Builder["Tauri Builder"] --> Plugins["Register plugins
window-state, single-instance, opener"]
Plugins --> DevCheck{"devtools feature?"}
DevCheck -->|Yes| DevPlugin["Register devtools plugin"]
DevCheck -->|No| Setup
DevPlugin --> Setup
Setup["setup#40;#41; hook"] --> Tray["Setup system tray
Show / Hide / Quit menu"]
Tray --> GWMode{"MESOCLAW_GATEWAY_URL
env var set?"}
GWMode -->|Yes, valid URL| External["Use external gateway
Store URL in state"]
GWMode -->|No| Embedded["Boot embedded gateway"]
Embedded --> LoadCfg["Load config.toml"]
LoadCfg --> InitSvc["init_services#40;config#41;"]
InitSvc --> StartGW["Start axum on host:port
with shutdown channel"]
StartGW --> Ready["App ready"]
External --> Ready
Ready --> Events["Window events:
close button hides to tray"]
```
### Hybrid Gateway Architecture
The desktop app supports two gateway modes:
1. **Embedded** (default): The gateway server starts in a background Tokio task during `setup()`. A `oneshot` channel provides graceful shutdown. This is the zero-configuration path -- users launch the desktop app and everything works.
2. **External**: If `MESOCLAW_GATEWAY_URL` is set to a valid URL, the desktop app connects to an external daemon instead of starting its own gateway. Useful for multi-device setups or when running the daemon as a system service.
### Frontend Integration
The frontend detects the Tauri environment via `window.__TAURI__` and provides typed wrappers in `web/src/lib/tauri.ts`:
- `isTauri` -- boolean flag for environment detection
- `closeToTray()` -- invoke `close_to_tray` IPC command
- `showWindow()` -- invoke `show_window` IPC command
- `getAppVersion()` -- invoke `get_app_version` IPC command
- `openDataDir()` -- invoke `open_data_dir` IPC command
All wrappers are no-ops when running in a browser (non-Tauri) context, so the same frontend works for both desktop and web.
## Scheduler Notification Flow (Stage 8.6.1)
The `PayloadExecutor` (`scheduler/payload_executor.rs`) handles 4 payload types dispatched by the scheduler tick loop. The `TokioScheduler` and `AppState` have a circular dependency resolved via `OnceCell` — the scheduler is constructed first, then wired to `AppState` post-construction via `wire()`.
```mermaid
graph TB
subgraph SchedulerTick["Scheduler Tick Loop"]
Tick["1s interval ticker"] --> Due["Filter due jobs"]
Due --> Active["Check active hours"]
Active --> Exec["PayloadExecutor.execute#40;job#41;"]
end
subgraph PayloadExec["PayloadExecutor - 4 payload types"]
Exec --> NotifyP["Notify
→ publish event"]
Exec --> AgentP["AgentTurn
→ resolve_agent + chat"]
Exec --> HeartP["Heartbeat
→ sysinfo gather"]
Exec --> ChanP["SendViaChannel
→ channel_registry.send"]
end
subgraph Delivery["Notification Delivery"]
NotifyP --> EventBus["Event Bus
SchedulerNotification +
SchedulerJobCompleted"]
EventBus --> WS["WS /ws/notifications
push to clients"]
EventBus --> Toast["Frontend toast
svelte-sonner"]
EventBus --> Desktop["Desktop notification
tauri-plugin-notification"]
end
subgraph Wiring["AppState Wiring"]
OnceCell["OnceCell pattern
TokioScheduler created → AppState built →
scheduler.wire#40;app_state#41; post-construction"]
end
style SchedulerTick fill:#2196F3,color:#fff
style PayloadExec fill:#4CAF50,color:#fff
style Delivery fill:#FF9800,color:#fff
style Wiring fill:#9E9E9E,color:#fff
```
### Key Design Decisions
| Decision | Rationale |
|---|---|
| OnceCell wiring | TokioScheduler needs AppState for agent/channel access, but AppState contains the scheduler — OnceCell breaks the cycle |
| WS `/ws/notifications` | Dedicated endpoint for push notifications, separate from `/ws/chat` |
| svelte-sonner toasts | Frontend subscribes to WS notifications and displays via toast library |
| tauri-plugin-notification | Desktop OS-level notifications when app is in tray |
## Channel Router Pipeline (Stage 8.7)
The `ChannelRouter` struct orchestrates the full message processing pipeline from inbound channel message to outbound response. It runs as a background task with an `mpsc` receiver and `watch` stop signal.
```mermaid
graph TB
subgraph Inbound["Inbound Message"]
Platform["Telegram / Slack / Discord"] --> Listen["Channel.listen#40;tx#41;"]
Webhook["POST /channels/name/message"] --> Router
Listen --> Router["ChannelRouter"]
end
subgraph Pipeline["Message Pipeline"]
Router --> Session["SessionMap
resolve or create session"]
Session --> ToolFilter["ToolPolicy
filter allowed tools per channel"]
ToolFilter --> Context["channel_system_context
platform-specific preamble"]
Context --> Agent["resolve_agent
with filtered tools"]
Agent --> Format["ChannelFormatter
platform-specific output"]
Format --> Send["ChannelSender
send response"]
Send --> Store["SessionManager
store user + assistant messages"]
end
subgraph Lifecycle["Lifecycle"]
Start["Boot: ChannelRouter::new#40;#41;
created in init_services"]
Run["router.start#40;#41;
spawns mpsc loop"]
Stop["watch stop signal
graceful shutdown"]
end
subgraph Hooks["Lifecycle Hooks"]
HookStart["on_agent_start
typing / status msg"]
HookTool["on_tool_use
update status"]
HookDone["on_agent_complete
cleanup status"]
end
Agent -.-> HookStart
Agent -.-> HookTool
Agent -.-> HookDone
style Inbound fill:#2196F3,color:#fff
style Pipeline fill:#4CAF50,color:#fff
style Lifecycle fill:#9E9E9E,color:#fff
style Hooks fill:#FF9800,color:#fff
```
### Gateway Integration
| Route | Description |
|---|---|
| `POST /channels/{name}/message` | Webhook endpoint — injects message into ChannelRouter pipeline |
### Frontend: Session Source
Channel-originated sessions carry a `source` field displayed as a platform badge (Telegram/Slack/Discord icon) in the session list UI.
## Channel Lifecycle Hooks (Stage 8.8)
Lifecycle hooks run at key points in the ChannelRouter pipeline. They are best-effort — failures are logged but do not block the pipeline.
```mermaid
graph TB
subgraph HookPoints["Hook Points in Pipeline"]
Start["on_agent_start"] --> Typing["Show typing / status"]
Tool["on_tool_use"] --> Update["Update status message"]
Done["on_agent_complete"] --> Cleanup["Clear typing / status"]
end
subgraph TGHooks["Telegram Hooks"]
TGStatus["Status messages
sent before agent runs"]
TGTyping["Typing refresh
4s interval loop"]
end
subgraph SLHooks["Slack Hooks"]
SLEphem["Ephemeral messages
postEphemeral / update / delete"]
end
subgraph DCHooks["Discord Hooks"]
DCTyping["Typing indicator
via Discord API"]
end
Start --> TGStatus & SLEphem & DCTyping
Tool --> TGTyping
Done --> TGTyping & SLEphem & DCTyping
style HookPoints fill:#4CAF50,color:#fff
style TGHooks fill:#2196F3,color:#fff
style SLHooks fill:#FF9800,color:#fff
style DCHooks fill:#9E9E9E,color:#fff
```
| Platform | on_agent_start | on_tool_use | on_agent_complete |
|---|---|---|---|
| Telegram | Send status message | Refresh typing indicator (4s) | Stop typing refresh |
| Slack | Post ephemeral "thinking..." | Update ephemeral message | Delete ephemeral message |
| Discord | Start typing indicator | (no-op) | (typing auto-expires) |
## Test Debt and Hardening (Stage 8.9)
Stage 8.9 addressed test coverage gaps and hardened critical modules.
### ProcessTool Kill Action
The `ProcessTool` gained a `kill` action using `sysinfo`-based process lookup. Kill requires `Full` autonomy level — lower autonomy levels are denied with `MesoError::PolicyDenied`.
### Context Engine Tests (52 tests)
Comprehensive unit test coverage for:
- `ContextEngine` — level determination, compose output, config toggles
- `BootContext` — OS/arch/hostname/locale detection
- Context summaries — hash-based cache invalidation, DB storage/retrieval
- Tier injection — Full/Minimal/Summary content verification
### Agent Tool Loop Tests (5 tests)
Integration tests verifying `RigToolAdapter` dispatch — agent correctly invokes tools during the chat loop and feeds results back to the LLM.
## Agent Action Tools (Phase 8.10)
Four new agent-callable tools give the AI agent direct control over system functions:
```mermaid
graph TD
subgraph ToolRegistry["ToolRegistry - 16 tools"]
subgraph Base["Base Tools - 14"]
SysInfo[system_info]
WebSearch[web_search]
FileR[file_read]
FileW[file_write]
FileL[file_list]
FileS[file_search]
Shell[shell]
Process[process]
Patch[patch]
Learn[learn]
SkillP[skill_proposal]
MemT[memory]
ConfigT[config]
AgentSelf["agent_notes"]
end
subgraph FeatureGated["Feature-Gated - 2"]
ChanSend["channel_send
#40;channels#41;"]
SchedT["scheduler
#40;scheduler#41;"]
end
end
ConfigT -->|ArcSwap| Config["AppConfig
hot-reload"]
MemT --> Memory["Memory trait
store/recall/forget"]
ChanSend --> ChanReg["ChannelRegistry
send/list/status"]
SchedT --> Sched["TokioScheduler
CRUD + history"]
style Base fill:#4CAF50,color:#fff
style FeatureGated fill:#FF9800,color:#fff
```
## Autonomous Reasoning Engine (Phase 8.11)
The `ReasoningEngine` provides an extensible pipeline for autonomous multi-step agent operation, with per-request tool call deduplication to prevent redundant API calls:
```mermaid
flowchart TD
Chat([Chat request]) --> Cache["ToolCallCache
per-request DashMap"]
Cache --> RE["ReasoningEngine::chat()"]
RE --> Agent["MesoAgent::prompt()"]
Agent --> LLM["LLM Provider"]
LLM --> Response["Agent response"]
Response --> Strategies["Run strategies"]
Strategies --> CS{"ContinuationStrategy
tools used? skip text heuristic"}
CS -->|"No tools called
+ planning language"| Nudge["Inject continuation nudge"]
Nudge --> Agent
CS -->|"Tools called OR
response complete"| Done([Final response])
Agent --> ToolCall{"Tool call?"}
ToolCall -->|cache hit| Cached["Return cached result
emit Cached event"]
ToolCall -->|cache miss| Execute["Execute tool
store in cache"]
Execute --> Agent
Cached --> Agent
style RE fill:#4CAF50,color:#fff
style CS fill:#FF9800,color:#fff
style Cache fill:#2196F3,color:#fff
```
Key components:
- **ReasoningEngine** -- orchestrates agent calls with pluggable strategy pipeline
- **ToolCallCache** -- per-request `DashMap` keyed by `hash(tool_name + args_json)`. Shared across all `RigToolAdapter`s via `Arc`. Caches both successes and errors. Tracks execution count via `AtomicU32`. Controlled by `tool_dedup_enabled` config (default `true`)
- **ContinuationStrategy** -- tool-aware continuation detection. If `tool_calls_made > 0`, skips the text heuristic entirely (prevents false positives like "Let me tell you about..."). Falls back to planning/refusal language detection only when no tools were called. Respects `agent_max_continuations` limit (default `1`)
- **BootContext** -- system environment discovery (OS, arch, hostname, home dir, desktop, downloads, shell, username)
### Deduplication defaults
| Config | Default | Range | Description |
|--------|---------|-------|-------------|
| `agent_max_turns` | 4 | 1-16 | Max rig-core agentic turns per `agent.chat()` |
| `agent_max_continuations` | 1 | 0-5 | Max ReasoningEngine continuation rounds |
| `tool_dedup_enabled` | true | -- | Enable per-request tool call cache |
## Semantic Memory and Embeddings (Phase 8.11)
Hybrid search combining FTS5 full-text search with vector similarity:
```mermaid
flowchart TD
Store([Memory store]) --> Content["Content text"]
Content --> FTS["FTS5 index
BM25 scoring"]
Content --> Embed{"Embedding provider?"}
Embed -->|openai| OpenAI["OpenAI /v1/embeddings
API key from keyring"]
Embed -->|local| FastEmbed["FastEmbed ONNX
no API key needed"]
Embed -->|none| NoVec["FTS5 only"]
OpenAI --> Vec["sqlite-vec index"]
FastEmbed --> Vec
Recall([Memory recall]) --> Hybrid["Hybrid scoring"]
FTS --> Hybrid
Vec --> Hybrid
Hybrid --> Results["Weighted results
fts_weight + vector_weight"]
style Store fill:#4CAF50,color:#fff
style Recall fill:#2196F3,color:#fff
```
Gateway embedding routes (5):
- `GET /embeddings/status` -- current provider and model info
- `POST /embeddings/test` -- test embedding generation
- `POST /embeddings/embed` -- embed arbitrary text
- `POST /embeddings/download` -- download local model
- `POST /embeddings/reindex` -- re-embed all stored memories
## Phase 18 Hardening
Phase 18 addressed 51 issues from two code audits across 8 parallel work streams:
- **ArcSwap config** -- runtime config hot-reload via `arc_swap::ArcSwap` replacing manual TOML write + reload
- **Security** -- CORS origin validation improvements, path traversal protection in file tools
- **Concurrency** -- eliminated data races in scheduler, security, and tools modules
- **Channel reliability** -- UTF-8 safe message splitting, Slack echo loop prevention
- **Frontend** -- svelte-check warnings reduced from 19 to 0
- **CI/CD** -- all-features testing added to CI pipeline
## Plugin Architecture (Phase 9)
```mermaid
graph TD
subgraph PluginSystem["Plugin System"]
Manifest["PluginManifest
TOML metadata + permissions"]
Registry["PluginRegistry
DashMap + JSON persistence"]
Process["PluginProcess
JSON-RPC 2.0 lifecycle"]
Adapter["PluginToolAdapter
Tool trait bridge"]
Installer["PluginInstaller
git + local install"]
end
subgraph Integration["Integration Points"]
ToolReg["ToolRegistry
built-in + plugin tools"]
SkillReg["SkillRegistry
bundled + plugin skills"]
GWHandlers["Gateway Handlers
8 REST endpoints"]
CLICmds["CLI Commands
7 subcommands"]
end
Installer -->|parses| Manifest
Installer -->|registers| Registry
Registry -->|spawns| Process
Process -->|wraps| Adapter
Adapter -->|registers| ToolReg
Installer -->|registers| SkillReg
GWHandlers -->|queries| Registry
GWHandlers -->|calls| Installer
CLICmds -->|HTTP| GWHandlers
style PluginSystem fill:#FF9800,color:#fff
style Integration fill:#4CAF50,color:#fff
```
### Plugin Lifecycle
- **Discovery**: On boot, `PluginRegistry` scans `plugins_dir` for installed plugins
- **Registration**: Each plugin's tools are wrapped in `PluginToolAdapter` and registered in `ToolRegistry`
- **Execution**: When a tool is called, `PluginProcess` spawns the plugin binary, communicates via JSON-RPC 2.0 over stdio
- **Recovery**: Crashed plugins are automatically restarted up to `plugin_max_restart_attempts` times
- **Idle Shutdown**: Inactive plugin processes are terminated after `plugin_idle_timeout_secs`
### Plugin Manifest Format (plugin.toml)
```toml
[plugin]
name = "weather"
version = "1.0.0"
description = "Weather forecast tool"
author = "example"
[permissions]
network = true
filesystem = false
[[tools]]
name = "get_weather"
binary = "weather-tool"
description = "Get weather for a location"
[[skills]]
name = "weather-prompt"
file = "skills/weather.md"
```
## Context-Driven Auto-Discovery
The context engine automatically detects which feature domains are relevant to the user's message and injects only pertinent context and agent rules.
### Domain Detection
```mermaid
flowchart TD
Msg([User message]) --> Detect["detect_relevant_domains#40;message#41;"]
Detect --> KW{"Keyword matching"}
KW -->|telegram, slack, discord,
channel, notify, dm| ChDom["ContextDomain::Channels"]
KW -->|schedule, remind, cron,
timer, recurring, every day| ScDom["ContextDomain::Scheduler"]
KW -->|skill, template,
prompt, persona| SkDom["ContextDomain::Skills"]
KW -->|no match| General["General context only"]
ChDom --> CatMap["Map to rule categories"]
ScDom --> CatMap
SkDom --> CatMap
General --> CatMap
CatMap --> Load["Load agent_rules
WHERE category IN categories"]
Load --> Inject["Inject into preamble
under 'Your Learned Rules'"]
style ChDom fill:#2196F3,color:#fff
style ScDom fill:#FF9800,color:#fff
style SkDom fill:#4CAF50,color:#fff
```
### Domain-to-Category Mapping
| Domain | Agent Rule Category |
|--------|-------------------|
| Channels | `channel` |
| Scheduler | `scheduling` |
| Skills / Tools | `tool_usage` |
| Always included | `general` |
**Key files**: `ai/context.rs` (`ContextDomain` enum, `detect_relevant_domains()`, `domains_to_rule_categories()`)
---
## AgentSelfTool
The `agent_notes` tool allows the agent to learn, recall, and forget behavioral rules that persist across conversations and get auto-injected into context.
### Data Model
- **Table**: `agent_rules` (DB migration v10)
- **Schema**: `id`, `content`, `category`, `created_at`, `active`
- **Categories**: `general`, `channel`, `scheduling`, `user_preference`, `tool_usage`
### Tool Actions
| Action | Description | Required Params |
|--------|-------------|-----------------|
| `learn` | Create a new behavioral rule | `content`, optional `category` |
| `rules` | List active rules | optional `category` filter |
| `forget` | Soft-delete a rule by ID | `id` |
### Integration
```mermaid
flowchart LR
Agent["Agent calls
agent_notes tool"] --> Learn["learn: INSERT rule"]
Agent --> Rules["rules: SELECT active"]
Agent --> Forget["forget: SET active=0"]
Learn --> DB["agent_rules table"]
Rules --> DB
Forget --> DB
DB --> Context["ContextEngine loads
rules by category"]
Context --> Preamble["Injected into
system prompt"]
```
**Control**: Gated by `self_evolution_enabled` config flag (runtime toggle via `Arc`).
**Key file**: `tools/agent_self_tool.rs`
---
## OpenAPI Documentation
Interactive API documentation via Scalar UI, feature-gated behind `api-docs`.
### Stack
- **utoipa** -- OpenAPI 3.1 spec generation from Rust handler annotations
- **scalar** -- Interactive documentation UI served at `/api-docs`
- **Feature gate**: `api-docs` (enabled by default in daemon and desktop)
### Endpoints
| Path | Description |
|------|-------------|
| `GET /api-docs` | Scalar interactive UI |
| `GET /api-docs/openapi.json` | Raw OpenAPI 3.1 JSON spec |
### Build
The spec is assembled at runtime from `#[utoipa::path]` annotations on handler functions. Feature-gated handlers (channels, scheduler) are conditionally merged into the spec.
**Key file**: `gateway/openapi.rs`
---
## Onboarding Flow
First-run setup flow that collects user location and timezone for context-aware agent behavior.
```mermaid
sequenceDiagram
participant FE as Frontend (AuthGate)
participant GW as Gateway
participant Cfg as Config
FE->>GW: GET /setup/status
GW->>Cfg: Check user_location + user_timezone
Cfg-->>GW: { needs_setup, missing fields }
GW-->>FE: SetupStatus response
alt needs_setup = true
FE->>FE: Show SetupDialog
FE->>FE: Auto-detect timezone via Intl.DateTimeFormat
FE->>FE: User enters location
FE->>GW: PUT /config { user_location, user_timezone }
GW->>Cfg: Update config.toml + ArcSwap
GW-->>FE: 200 OK
FE->>FE: Dismiss dialog
else needs_setup = false
FE->>FE: Proceed to chat
end
```
### Detection
- **Timezone**: `Intl.DateTimeFormat().resolvedOptions().timeZone` (browser JS API)
- **Location**: Manual user input (e.g., "Toronto, Canada")
### Config Fields
- `user_timezone: Option` -- IANA format (e.g., "America/New_York")
- `user_location: Option` -- Human-readable (e.g., "New York, US")
**Key files**: `gateway/handlers/config.rs` (`setup_status`), `web/src/lib/components/SetupDialog.svelte`
---
## Tool Permission System (Phase 19)
Per-surface, risk-based tool permission system. Each tool declares a `RiskLevel` (Low, Medium, High) via the `Tool` trait. Permissions are resolved hierarchically: per-surface per-tool override > risk-level default.
### Risk Level Defaults
| Risk Level | Default | Examples |
|---|---|---|
| Low | Allowed | web_search, system_info |
| Medium | Allowed | config, learn, memory, skill_proposal, agent_self, channel_send, scheduler |
| High | Denied | shell, file_read, file_write, file_list, file_search, patch, process |
### Surface Overrides
Local surfaces (desktop, cli, tui) override all high-risk tools to `Allowed` by default. Remote surfaces (telegram, slack, discord) use risk-level defaults -- high-risk tools are denied unless explicitly overridden.
### Permission States
| State | Behavior |
|---|---|
| `allowed` | Tool can execute |
| `denied` | Tool is blocked |
| `ask_once` | Prompt user once, remember answer (Phase 2) |
| `ask_always` | Prompt user every time (Phase 2) |
### Resolution Flow
```mermaid
graph TD
A["Tool call on surface"] --> B{"Per-surface override?"}
B -->|yes| C["Use override state"]
B -->|no| D{"Check risk level"}
D --> E["Low: allowed"]
D --> F["Medium: allowed"]
D --> G["High: denied"]
style C fill:#4CAF50,color:#fff
style E fill:#4CAF50,color:#fff
style F fill:#FF9800,color:#fff
style G fill:#F44336,color:#fff
```
### Key Files
| File | Purpose |
|---|---|
| `security/permissions.rs` | `ToolPermissions`, `PermissionResolver`, `PermissionState` |
| `tools/traits.rs` | `risk_level()` method on `Tool` trait |
| `config/schema.rs` | `tool_permissions` field in `AppConfig` |
| `gateway/handlers/permissions.rs` | REST API (4 routes) |
| `web/src/lib/components/settings/PermissionsSettings.svelte` | Settings UI |
| `web/src/lib/stores/permissions.svelte.ts` | Frontend store |
---
## Model Capability Validation
Pre-agent-dispatch check that prevents tool-calling errors with incompatible models.
### Flow
```mermaid
flowchart TD
Chat([Chat request]) --> Resolve["Resolve provider + model"]
Resolve --> Lookup["Lookup ModelInfo from ProviderRegistry"]
Lookup --> Check{"supports_tools?"}
Check -->|true| Build["Build agent with tools"]
Check -->|false| Error["Return MesoError::ModelCapability
HTTP 400"]
Lookup -->|model not found| Build
style Error fill:#F44336,color:#fff
style Build fill:#4CAF50,color:#fff
```
### Data
- **Field**: `ModelInfo.supports_tools: bool` (default `true`)
- **Storage**: `ai_models.supports_tools` column (DB migration v8)
- **API**: `POST /providers/{id}/models` accepts `supports_tools` flag
**Key file**: `ai/agent.rs` (capability check in `get_or_build_agent()`)
---
## Concurrency Rules
These rules are enforced across the entire codebase to prevent async runtime issues.
| Rule | Rationale |
|---|---|
| No `std::sync::Mutex` in async paths | Blocks the tokio runtime; use `tokio::sync::Mutex` or `DashMap` |
| No `block_on()` anywhere | Panics inside tokio runtime; use `tokio::spawn` or `.await` |
| All SQLite ops via `spawn_blocking` | `rusqlite` is synchronous; blocking in async context starves tasks |
| All errors are `MesoError` | No `Result`; use `thiserror` enum with typed variants |
| `AppState` is `Clone + Arc` | Shared across axum handlers without lifetime issues |
| `EventBus` uses `tokio::sync::broadcast` | Lock-free fan-out to all subscribers |
| Never hold async locks across `.await` | Prevents deadlocks; acquire, use, drop before yielding |
## Lessons Learned from v1
Key architectural mistakes from MesoClaw v1 and how v2 prevents them.
| v1 Mistake | v2 Prevention |
|---|---|
| `std::sync::Mutex` in async code | `tokio::sync::Mutex` or `DashMap` exclusively |
| `block_on()` in event loop | Zero `block_on()` calls; `tokio::spawn` for sync work |
| `Result` everywhere | `MesoError` enum with `thiserror` |
| Custom AI layer (1400 LOC) | `rig-core` (battle-tested, 18 providers) |
| 21 Zustand stores | 6 Svelte 5 rune stores ($state), single WS connection |
| 165 IPC commands (Tauri v1) | Gateway-only architecture (~40 HTTP routes) |
| OKLCH color functions in CSS | Pre-computed hex values only |
| useEffect soup (React) | Single `$effect` per Svelte component, reactive stores |
| 13-phase boot sequence | Single `init_services()` in `boot.rs` |